Tbs-browser Exe -

// Pseudo-code inside browser window class void BrowserWindow::SaveSession(std::string sessionName) json session; session["name"] = sessionName; session["timestamp"] = time(nullptr); for (auto& tab : m_tabs) json tabData; tabData["url"] = tab->GetURL(); tabData["title"] = tab->GetTitle(); tabData["scrollX"] = tab->GetScrollX(); // via JS session["tabs"].push_back(tabData);

The short answer is: However, malware authors often use names of legitimate processes to disguise their malicious software. tbs-browser exe